Defining Cyber Risk Scenarios to Evaluate IoT Systems

The growth of the Internet of Things (IoT) has accelerated digital transformation processes in organizations and cities. However, it has also opened new security challenges due to the complexity and dynamism of these systems. The application of security risk analysis methodologies used to evaluate i...

Full description

Bibliographic Details
Main Authors: Roberto Andrade, Iván Ortiz, María Cazares, Gustavo Navas, María Isabel Sánchez-Pazmiño
Format: Article
Language:English
Published: MDPI AG 2022-12-01
Series:Games
Subjects:
Online Access:https://www.mdpi.com/2073-4336/14/1/1
Description
Summary:The growth of the Internet of Things (IoT) has accelerated digital transformation processes in organizations and cities. However, it has also opened new security challenges due to the complexity and dynamism of these systems. The application of security risk analysis methodologies used to evaluate information technology (IT) systems have their limitations to qualitatively assess the security risks in IoT systems, due to the lack of historical data and the dynamic behavior of the solutions based on the IoT. The objective of this study is to propose a methodology for developing a security risk analysis using scenarios based on the risk factors of IoT devices. In order to manage the uncertainty due to the dynamics of IoT behaviors, we propose the use of Bayesian networks in conjunction with the Best Worst Method (BWM) for multi-criteria decision-making to obtain a quantitative security risk value.
ISSN:2073-4336